D
Posted 9 hours ago
Information Security Engineer
DoctronicInformation Security Engineer
Perks & benefits
CommissionHealth InsuranceMedical InsuranceMobile AllowancePaid Leave
Requirements
7+ years information security experience, Healthcare or fintech background, Hands-on technical ability, SOC 2 and HIPAA experience, AWS security controls knowledge
Skills
AWSComplianceHIPAA
About the role
About the Company
Doctronic is the first AI legally authorized to practice medicine. We're processing millions of consultations monthly with 99%+ treatment plan accuracy validated by board-certified clinicians.
Responsibilities
- Maintain SOC 2 Type II compliance and manage ongoing audits with external assessors
- Implement and monitor HIPAA technical safeguards across infrastructure and applications
- Conduct and coordinate regular penetration testing, vulnerability assessments, and security reviews
- Complete vendor security reviews and respond to enterprise security questionnaires
- Implement and enforce security policies across engineering, operations, and business teams
- Respond to security incidents and conduct post-incident analysis
- Build security automation and monitoring to scale protection
- Collaborate with engineering teams to embed security best practices into the development lifecycle
- Stay current on emerging threats and regulatory requirements in healthcare technology
Requirements
- 7+ years of information security experience in production environments
- Healthcare or fintech background required
- Hands-on technical ability to read code, configure systems, and investigate incidents
- Deep experience with SOC 2, HIPAA, or equivalent compliance frameworks
- Familiarity with AWS security controls, IAM, encryption, and cloud security best practices
- Strong communication skills for technical and non-technical audiences
Preferred Qualifications
- CISSP, CISM, CISA, or equivalent security certification
- Experience with health information exchanges, TEFCA, QHIN, or interoperability standards
- Startup security experience building programs from scratch
- Familiarity with AI/ML security considerations and model protection
- Experience with mobile app security (iOS/Android)
- Knowledge of medical device security standards or FDA digital health guidance
- Background in application security, secure SDLC, or DevSecOps
Benefits
- Base Salary: $180K-$240K + Equity
- Comprehensive health, dental, and vision coverage
- Mental health support
- Flexible time off
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeInformation Security Engineer
Doctronic · New York City
